https://live.paloaltonetworks.com/t5/general-topics/security-policy-to-block-dropbox/m-p/9796#M7185 <HTML><HEAD></HEAD><BODY><P>What are the IPs listed in the destination address? Please look at your traffic log which indicates allow for dropbox and make sure to include the destination IPs in the destination address. I would rather leave this address as 'any'. When you see the traffic passing through, is it allowed through the rule that is above the deny rule?</P></BODY></HTML> Thu, 16 Aug 2012 20:31:26 GMT zarina 2012-08-16T20:31:26Z https://live.paloaltonetworks.com/t5/general-topics/security-policy-to-block-dropbox/m-p/9795#M7184 <HTML><HEAD></HEAD><BODY><P>I have created a security policy to block Dropbox traffic, but so far it is not working. In my policy I have chosen:</P><P>Source:&nbsp;&nbsp;&nbsp;&nbsp; Destination Zone:&nbsp;&nbsp;&nbsp;&nbsp; User:&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; Destination Address:&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; Application:&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; Service:&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; Action;</P><P>trust&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; untrust&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; Me (as a test)&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; dropbox.com, compute-1.amazonaws.com&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; DropBox&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; Any&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; Deny</P><P></P><P>Am I missing something?</P><P></P><P></P><P>Thanks</P></BODY></HTML> Thu, 16 Aug 2012 15:55:18 GMT https://live.paloaltonetworks.com/t5/general-topics/security-policy-to-block-dropbox/m-p/9795#M7184 kuntzelectroplating 2012-08-16T15:55:18Z https://live.paloaltonetworks.com/t5/general-topics/security-policy-to-block-dropbox/m-p/9796#M7185 <HTML><HEAD></HEAD><BODY><P>What are the IPs listed in the destination address? Please look at your traffic log which indicates allow for dropbox and make sure to include the destination IPs in the destination address. I would rather leave this address as 'any'. When you see the traffic passing through, is it allowed through the rule that is above the deny rule?</P></BODY></HTML> Thu, 16 Aug 2012 20:31:26 GMT https://live.paloaltonetworks.com/t5/general-topics/security-policy-to-block-dropbox/m-p/9796#M7185 zarina 2012-08-16T20:31:26Z https://live.paloaltonetworks.com/t5/general-topics/security-policy-to-block-dropbox/m-p/9797#M7186 <HTML><HEAD></HEAD><BODY><P>I have found the IP range from the logs and added them as the destination instead. When I look at the logs my rule which is 2nd from the top is passed by and an Internet access rule further donw my list is the one allowing Dropbox access out. So my rule is being bypassed.</P><P>I am stumped at why my rule is being ignored.</P><P></P><P>I am open to suggestions.</P><P></P><P></P><P>Thanks</P></BODY></HTML> Fri, 17 Aug 2012 00:57:52 GMT https://live.paloaltonetworks.com/t5/general-topics/security-policy-to-block-dropbox/m-p/9797#M7186 kuntzelectroplating 2012-08-17T00:57:52Z https://live.paloaltonetworks.com/t5/general-topics/security-policy-to-block-dropbox/m-p/9798#M7187 <HTML><HEAD></HEAD><BODY><P>Solved. I changed the destination address to "any". That was the ticket.</P></BODY></HTML> Fri, 17 Aug 2012 12:43:14 GMT https://live.paloaltonetworks.com/t5/general-topics/security-policy-to-block-dropbox/m-p/9798#M7187 kuntzelectroplating 2012-08-17T12:43:14Z